Risk Analysis

Fraud Waste and Abuse

How Can You Prevent Fraud Waste and Abuse Under HIPAA

In 2023, the Department of Health and Human Services Office of Inspector General (OIG) reported over $3.6 billion in expected recoveries from healthcare fraud

Sep 7, 2024

Meaningful Use

Meaningful Use Electronic Health Records and HIPAA

When OCR settled with a major health system in 2017 for $2.5 million after a breach involving an unencrypted laptop containing protected health information

May 6, 2024

Medical OSHA Compliance

Medical OSHA Compliance and HIPAA: What You Must Know

When a dental practice in the Southeast received citations from both OSHA and OCR within the same quarter, the owner told me something I hear

May 6, 2024

HIPAA Compliance

Negative Impact of Technology in Healthcare HIPAA Risks

In 2023, OCR reported that hacking and IT incidents accounted for 79% of all large healthcare data breaches — a staggering figure that would have been

Apr 21, 2024

HIPAA Compliance

Is Your Office Safe HIPAA Compliant? Key Requirements

In 2019, a small cardiology practice in New England received a complaint after a terminated employee reported that patient records were stored in an unlocked

Mar 7, 2024

OSHA Compliance

OSHA Bloodborne Pathogens Standards Require Healthcare Pros To

In 2023, OSHA cited a Florida dental practice for over $78,000 in penalties — not for a data breach, but for failing to maintain an

Mar 7, 2024

OSHA Compliance

OSHA Compliance for Healthcare Professionals & HIPAA

In 2023, a mid-sized hospital in the Southeast faced simultaneous investigations from OSHA and OCR after a needlestick incident exposed a nurse to bloodborne pathogens

Mar 7, 2024

OSHA for Healthcare

OSHA for Healthcare: Where Worker Safety Meets HIPAA

When an OSHA inspector walks into your clinic requesting access to employee medical records, exposure logs, and workplace injury documentation, your compliance team faces a

Mar 7, 2024

PHI

PHI HIPAA Compliance: Protecting Health Data in 2024

In February 2024, OCR announced a $4.75 million settlement with a nonprofit health system that failed to conduct an enterprise-wide risk analysis — leaving the

Jan 15, 2024

PHI Data

PHI Data: What Counts, What Doesn't, and What to Protect

In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had been disclosing patient records to a marketing

Jan 15, 2024

HIPAA Privacy Rule

Privacy vs Security Rule HIPAA: Key Differences Explained

In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had addressed its Privacy Rule obligations but had done

Jan 8, 2024

Cloud Security

Security Measures for PHI in Cloud-Based Therapy Apps

In early 2024, OCR settled with a telehealth provider for $950,000 after an investigation revealed the organization had deployed a cloud-based therapy platform without

Dec 15, 2023